CVE-2025-11849 | Mammoth up to 1.10.x /dev/random path traversal (SNYK-JS-MAMMOTH-13554470)

October 17, 2025 Yanac

A vulnerability was found in Mammoth up to 1.10.x. It has been classified as critical. This issue affects some unknown processing of the file /dev/random. Performing manipulation results in path traversal.

This vulnerability was named CVE-2025-11849. The attack may be initiated remotely. There is no available exploit.

Upgrading the affected component is recommended.VulDB Recent EntriesRead More